Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84C64F9802D911EF9657DD22017001B1.roa
File: 84C64F9802D911EF9657DD22017001B1.roa (raw, json)
Hash identifier: wmyKNr1T9OTYpgPXyCGw0uxAbnX7ZgmrDACgQjbH6xo=
Subject key identifier: 40:D5:73:73:7B:BE:5C:17:99:76:DE:EA:AF:DF:2E:87:13:F1:4A:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B043
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84C64F9802D911EF9657DD22017001B1.roa
Signing time: Thu 25 Apr 2024 07:57:53 +0000
ROA not before: Thu 25 Apr 2024 07:57:50 +0000
ROA not after: Sun 02 Feb 2025 07:57:50 +0000
asID: 132839
IP address blocks: 154.213.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45123 (0xb043)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 07:57:50 2024 GMT
Not After : Feb 2 07:57:50 2025 GMT
Subject: CN=662a0d01-9beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a5:3c:06:e5:c6:42:02:d1:8e:18:af:19:90:
83:57:a3:90:cd:00:86:65:49:ac:4a:87:b5:b5:31:
2d:92:cb:3a:6f:e9:61:81:ed:a7:3f:03:ae:71:ad:
fe:7d:37:d7:09:61:7f:a3:50:aa:7f:10:69:f9:21:
8f:b0:0a:d2:e9:07:4f:ab:db:05:34:ba:43:60:8d:
9c:59:1c:9f:cf:85:41:0b:6f:00:91:2a:5d:7c:4d:
e6:8e:ab:f2:c5:c1:57:2e:9f:8e:f1:82:00:7e:b2:
a7:b3:34:cc:7a:ea:5c:61:41:0c:c7:10:05:83:f5:
af:b1:a5:a6:8d:80:fa:c1:80:9f:89:23:80:60:74:
3b:4c:b4:01:82:d4:88:ab:22:25:ad:cf:52:3d:38:
89:73:0b:99:52:0b:78:b1:ec:8e:0a:2b:53:8f:98:
f0:f4:87:94:74:f4:d5:cc:53:39:84:e1:0c:8a:79:
78:60:ac:95:d0:e6:bc:71:0b:5f:43:f4:ca:ce:52:
a3:8e:e5:70:16:d4:e9:56:89:05:a1:e1:07:b0:56:
28:21:24:9f:5d:ff:cb:42:cd:0d:50:04:e9:55:88:
11:3e:72:de:16:e3:ce:d7:0b:69:de:a2:8a:60:01:
8a:3a:22:3d:5e:e4:0d:69:4f:5e:6a:61:22:8f:67:
50:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D5:73:73:7B:BE:5C:17:99:76:DE:EA:AF:DF:2E:87:13:F1:4A:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84C64F9802D911EF9657DD22017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.128.0/19
Signature Algorithm: sha256WithRSAEncryption
55:01:00:09:cd:c7:bb:48:4e:eb:78:ff:6d:af:58:cd:e3:5e:
0f:95:70:85:6b:ff:fa:67:94:65:5a:7d:71:99:44:16:d1:b9:
37:eb:1c:c8:11:1c:87:3d:9a:98:9e:02:d0:ae:86:51:70:2d:
45:44:96:9c:54:b7:df:d1:64:39:a6:95:44:ce:8c:26:df:47:
51:a4:e0:02:10:53:ff:26:7b:fd:5c:b1:04:35:72:5a:5c:b0:
ec:26:a2:24:6d:b1:2c:1a:b0:6f:32:e7:43:45:ef:51:23:36:
32:d2:c4:c7:21:29:a3:c7:e0:c9:2d:e6:21:6c:66:a3:8f:ae:
63:88:f7:ca:c9:14:94:23:f3:72:80:62:54:45:dc:01:07:6d:
df:36:b4:e3:b5:4c:53:45:a2:c9:28:66:96:e7:ba:29:4a:f9:
ce:ba:a4:ce:c9:18:c2:df:15:37:07:66:47:0c:85:9c:0b:b3:
91:7b:4b:0e:64:cb:2e:8c:ea:b1:67:56:d0:79:f6:ee:c1:40:
2e:87:0e:49:b4:36:4a:3c:c9:c1:6f:22:f9:80:7e:83:5e:a0:
1d:f4:9e:d4:b0:87:82:7b:6e:da:37:0b:8c:71:3d:3b:2b:63:
83:4f:12:f4:27:f9:89:70:45:ce:e2:d3:e5:6b:2d:a8:99:75:
5f:aa:42:1b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALBDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI1MDc1NzUwWhcNMjUwMjAyMDc1NzUwWjAYMRYw
FAYDVQQDEw02NjJhMGQwMS05YmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz6U8BuXGQgLRjhivGZCDV6OQzQCGZUmsSoe1tTEtkss6b+lhge2nPwOu
ca3+fTfXCWF/o1CqfxBp+SGPsArS6QdPq9sFNLpDYI2cWRyfz4VBC28AkSpdfE3m
jqvyxcFXLp+O8YIAfrKnszTMeupcYUEMxxAFg/WvsaWmjYD6wYCfiSOAYHQ7TLQB
gtSIqyIlrc9SPTiJcwuZUgt4seyOCitTj5jw9IeUdPTVzFM5hOEMinl4YKyV0Oa8
cQtfQ/TKzlKjjuVwFtTpVokFoeEHsFYoISSfXf/LQs0NUATpVYgRPnLeFuPO1wtp
3qKKYAGKOiI9XuQNaU9eamEij2dQ8wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEDV
c3N7vlwXmXbe6q/fLocT8UpmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84NEM2NEY5ODAyRDkxMUVGOTY1N0REMjIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmtWAMA0GCSqGSIb3DQEB
CwUAA4IBAQBVAQAJzce7SE7reP9tr1jN414PlXCFa//6Z5RlWn1xmUQW0bk36xzI
ERyHPZqYngLQroZRcC1FRJacVLff0WQ5ppVEzowm30dRpOACEFP/Jnv9XLEENXJa
XLDsJqIkbbEsGrBvMudDRe9RIzYy0sTHISmjx+DJLeYhbGajj65jiPfKyRSUI/Ny
gGJURdwBB23fNrTjtUxTRaLJKGaW57opSvnOuqTOyRjC3xU3B2ZHDIWcC7ORe0sO
ZMsujOqxZ1bQefbuwUAuhw5JtDZKPMnBbyL5gH6DXqAd9J7UsIeCe27aNwuMcT07
K2ODTxL0J/mJcEXO4tPlay2omXVfqkIb
-----END CERTIFICATE-----
Generated at Mon May 20 03:18:19 2024 by rpki-client on console-fra.rpki-client.org